User's Guide
Table Of Contents
- Table of Contents
- Preface
- Welcome to Extreme Campus Controller
- Dashboard
- Monitor
- Sites List
- Device List
- Access Points List
- Smart RF Widgets
- Switches List
- Networks List
- Clients
- Policy
- Configure
- Network Configuration Steps
- Sites
- Add a Site
- Modifying Site Configuration
- Site Location
- Adding Device Groups to a Site
- Add or Edit a Configuration Profile
- Associated Profiles
- Associated Networks
- Mesh Point Profile Configuration
- Configure Client Bridge
- Understand Radio Mode
- Radio as a Sensor
- Advanced AP Radio Settings
- VLAN Profile Settings
- AirDefense Profile Settings
- ExtremeLocation Profile Settings
- IoT Profile Settings
- Positioning Profile Settings
- Analytics Profile Settings
- RTLS Settings
- Advanced Configuration Profile Settings
- Configuring RF Management
- Configuring a Floor Plan
- Advanced Tab
- Devices
- Networks
- Policy
- Automatic Adoption
- ExtremeGuest Integration
- AAA RADIUS Authentication
- Onboard
- Onboard AAA Authentication
- Manage Captive Portal
- Manage Access Control Groups
- Access Control Rules
- Tools
- Administration
- System Configuration
- Manage Administrator Accounts
- Extreme Campus Controller Applications
- Product License
- Glossary
- Index
Extreme Campus Controller is shipped with a default policy configuration that includes the following
default roles:
• Enterprise User
• Quarantine
• Unregistered
• Guest Access
• Deny Access
• Assessing
•
Failsafe
The Enterprise User access policy is intended for admin users with full access.
The Quarantine access policy is used to restrict network access to end-systems that have failed
assessment. The Quarantine policy role denies all trac by default while permitting access to only
required network resources such as basic network services (for example, ARP, DHCP, and DNS) and
HTTP to redirect web trac for assisted remediation.
Related Topics
Add Policy Roles on page 260
Role Widgets on page 113
Policy Role Settings on page 260
Preconfigured Policy Roles
Extreme Campus Controller is shipped a with the following default policy configurations listed in Table
25.
Policy roles define the authorization level that Extreme Campus Controller assigns to a connecting end-
system based on the end-system's authentication and/or assessment results. The access policies define
a set of network access services that determine exactly how an end-system's trac is authorized on the
network.
Table 25: Preconfigured Policy Roles
Role Description
Enterprise User Intended for admin users with full access
Quarantine The Quarantine access policy is used to restrict network access
to end-systems that have failed assessment. The Quarantine
policy role denies all trac by default while permitting access
to only required network resources such as basic network
services (e.g., ARP, DHCP, and DNS) and HTTP to redirect web
trac for assisted remediation.
Unregistered The Unregistered access policy default action is to deny all
unregistered trac.
Guest Access The Guest Access policy allows registered guest trac.
Deny Access The Deny Access policy default action is to deny all trac.
Roles List Monitor
112 Extreme Campus Controller User Guide for version 5.46.03